Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/Oap7veVAvOXqdZTmK7Qzep73yXA.roa
File: Oap7veVAvOXqdZTmK7Qzep73yXA.roa (raw, json)
Hash identifier: +uKTFxRYeplxxzfg2z2stin9vwovgz8JZpslM3Waqzc=
Subject key identifier: 39:AA:7B:BD:E5:40:BC:E5:EA:75:94:E6:2B:B4:33:7A:9E:F7:C9:70
Certificate issuer: /CN=0c90c356e2864f43894857443555d8b5c0352819
Certificate serial: 0188E3DAEEA333624F59512FE97713D9DD19
Authority key identifier: 0C:90:C3:56:E2:86:4F:43:89:48:57:44:35:55:D8:B5:C0:35:28:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/Oap7veVAvOXqdZTmK7Qzep73yXA.roa
Signing time: Thu 22 Jun 2023 16:05:55 +0000
ROA not before: Thu 22 Jun 2023 16:05:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44395
IP address blocks: 109.75.40.0/21 maxlen: 24
46.162.192.0/18 maxlen: 24
46.36.112.0/20 maxlen: 24
178.78.160.0/20 maxlen: 24
212.34.224.0/19 maxlen: 24
37.157.212.0/22 maxlen: 24
37.157.209.0/24 maxlen: 24
37.157.210.0/24 maxlen: 24
37.157.208.0/22 maxlen: 24
37.157.208.0/20 maxlen: 24
212.34.232.0/21 maxlen: 24
178.78.176.0/21 maxlen: 24
37.157.216.0/22 maxlen: 24
37.157.216.0/21 maxlen: 24
188.115.192.0/18 maxlen: 24
37.157.220.0/22 maxlen: 24
81.16.0.0/20 maxlen: 24
82.199.192.0/20 maxlen: 24
109.75.36.0/22 maxlen: 24
178.78.128.0/19 maxlen: 24
109.75.34.0/23 maxlen: 24
178.78.128.0/18 maxlen: 24
141.136.64.0/19 maxlen: 24
212.34.240.0/21 maxlen: 24
46.162.240.0/20 maxlen: 24
212.34.240.0/20 maxlen: 24
37.252.64.0/19 maxlen: 24
92.43.136.0/22 maxlen: 24
92.43.136.0/21 maxlen: 24
92.43.140.0/22 maxlen: 24
185.59.68.0/22 maxlen: 24
5.77.128.0/17 maxlen: 24
46.241.128.0/17 maxlen: 24
2a00:cc40::/29 maxlen: 48
2a01:4a00::/32 maxlen: 32
2a03:1080::/32 maxlen: 32
2a00:cc40::/32 maxlen: 32
2a00:cc40::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e3:da:ee:a3:33:62:4f:59:51:2f:e9:77:13:d9:dd:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c90c356e2864f43894857443555d8b5c0352819
Validity
Not Before: Jun 22 16:05:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39aa7bbde540bce5ea7594e62bb4337a9ef7c970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:de:e5:70:e2:b8:d2:2d:bc:5e:4e:f4:fc:06:
9d:2b:ec:20:a0:1e:5c:1a:d3:70:cd:8a:64:58:9f:
d3:05:8b:3a:92:a8:3e:89:7d:d6:c8:b2:78:ef:91:
7b:16:8a:85:6e:e1:85:11:23:36:11:b6:b9:03:57:
b2:a9:57:c2:3c:7c:cf:d9:03:f0:8e:72:f5:82:4c:
d7:8d:5b:6f:f5:48:cb:f2:e5:5d:61:8a:f4:45:73:
a0:7a:62:fa:95:ea:89:50:86:1e:cb:37:0a:74:c5:
bc:f8:06:1f:fd:1f:83:7e:cc:8d:ba:98:53:f5:60:
9d:df:3b:86:9b:e3:8e:30:cf:7d:4b:dc:98:fd:a9:
eb:fd:af:52:a8:29:bd:4e:c2:93:69:6f:df:b8:e1:
ec:05:a5:68:a6:e1:95:e8:89:4d:71:2f:1e:f6:26:
7e:ee:d8:f5:96:ea:45:05:b2:c8:6c:68:a8:18:b4:
31:29:78:95:26:fc:eb:f4:19:18:ba:e9:33:d4:e4:
f4:15:2c:dd:85:05:25:7e:2b:32:52:90:5a:b0:59:
a0:30:4f:ed:b3:fb:00:69:bf:5e:0a:b0:34:8f:23:
2d:b5:51:07:9c:3a:8c:40:af:89:14:6e:80:f0:ae:
3f:60:c4:b5:f2:1d:7f:a4:63:29:fb:cf:15:23:65:
a9:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:AA:7B:BD:E5:40:BC:E5:EA:75:94:E6:2B:B4:33:7A:9E:F7:C9:70
X509v3 Authority Key Identifier:
keyid:0C:90:C3:56:E2:86:4F:43:89:48:57:44:35:55:D8:B5:C0:35:28:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/Oap7veVAvOXqdZTmK7Qzep73yXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/DJDDVuKGT0OJSFdENVXYtcA1KBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.77.128.0/17
37.157.208.0/20
37.252.64.0/19
46.36.112.0/20
46.162.192.0/18
46.241.128.0/17
81.16.0.0/20
82.199.192.0/20
92.43.136.0/21
109.75.34.0-109.75.47.255
141.136.64.0/19
178.78.128.0/18
185.59.68.0/22
188.115.192.0/18
212.34.224.0/19
IPv6:
2a00:cc40::/29
2a01:4a00::/32
2a03:1080::/32
Signature Algorithm: sha256WithRSAEncryption
40:48:79:4f:33:2a:05:54:d2:40:46:aa:71:30:ae:c4:39:ea:
47:65:35:b8:60:09:6e:a6:75:7d:14:99:66:fa:d7:96:1a:8a:
00:7f:38:20:fd:80:95:28:5d:e2:c7:16:bf:5b:47:9c:06:6a:
72:54:85:2d:c7:a9:f5:d9:83:5a:cb:30:06:81:18:6a:06:8f:
87:9c:f4:8f:b0:9e:81:4f:94:f7:39:b5:68:17:2d:b9:71:4f:
3c:3a:89:ae:c7:3c:14:6c:c9:dd:0b:67:7f:49:01:1a:a7:da:
d4:91:df:c0:f9:1f:f2:07:c7:40:d0:ef:80:f7:32:cc:05:4f:
87:7e:41:d3:e2:1f:b7:37:6e:f2:ec:d5:bf:1c:15:a9:10:6b:
25:85:0b:1e:f3:6c:09:42:c8:40:2d:70:4d:5d:d7:22:00:4d:
39:b2:8e:9c:2b:54:b9:68:3e:17:0f:9a:fd:d1:c1:fd:ff:01:
89:2a:69:44:2f:d7:1f:c8:00:fe:61:48:0b:38:94:90:1a:f1:
76:15:ce:ad:d0:0e:3a:ca:87:0d:8f:d4:b3:02:6a:15:ff:9e:
e0:5a:49:dc:35:f9:51:5e:61:ff:49:67:51:63:94:12:de:54:
4c:ba:87:c1:54:44:81:7d:8e:f3:10:9a:a5:96:75:83:ad:0a:
ed:24:cb:a4
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgISAYjj2u6jM2JPWVEv6XcT2d0ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjOTBjMzU2ZTI4NjRmNDM4OTQ4NTc0NDM1NTVkOGI1YzAz
NTI4MTkwHhcNMjMwNjIyMTYwNTU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOWFhN2JiZGU1NDBiY2U1ZWE3NTk0ZTYyYmI0MzM3YTllZjdjOTcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy97lcOK40i28Xk70/AadK+wgoB5c
GtNwzYpkWJ/TBYs6kqg+iX3WyLJ475F7FoqFbuGFESM2Eba5A1eyqVfCPHzP2QPw
jnL1gkzXjVtv9UjL8uVdYYr0RXOgemL6leqJUIYeyzcKdMW8+AYf/R+DfsyNuphT
9WCd3zuGm+OOMM99S9yY/anr/a9SqCm9TsKTaW/fuOHsBaVopuGV6IlNcS8e9iZ+
7tj1lupFBbLIbGioGLQxKXiVJvzr9BkYuukz1OT0FSzdhQUlfisyUpBasFmgME/t
s/sAab9eCrA0jyMttVEHnDqMQK+JFG6A8K4/YMS18h1/pGMp+88VI2Wp4wIDAQAB
o4IChTCCAoEwHQYDVR0OBBYEFDmqe73lQLzl6nWU5iu0M3qe98lwMB8GA1UdIwQY
MBaAFAyQw1bihk9DiUhXRDVV2LXANSgZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvREpERFZ1S0dUME9KU0ZkRU5WWFl0Y0ExS0JrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hYzVhNTYtMTYzYS00OTdhLTk1NDct
ZTM3OTlhZGU5ZGZlLzEvT2FwN3ZlVkF2T1hxZFpUbUs3UXplcDczeVhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9hYzVhNTYtMTYzYS00OTdhLTk1NDctZTM3OTlhZGU5ZGZl
LzEvREpERFZ1S0dUME9KU0ZkRU5WWFl0Y0ExS0JrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGaBggrBgEFBQcBBwEB/wSBijCBhzBoBAIAATBiAwQHBU2A
AwQEJZ3QAwQFJfxAAwQELiRwAwQGLqLAAwQHLvGAAwQEURAAAwQEUsfAAwQDXCuI
MAwDBAFtSyIDBARtSyADBAWNiEADBAayToADBAK5O0QDBAa8c8ADBAXUIuAwGwQC
AAIwFQMFAyoAzEADBQAqAUoAAwUAKgMQgDANBgkqhkiG9w0BAQsFAAOCAQEAQEh5
TzMqBVTSQEaqcTCuxDnqR2U1uGAJbqZ1fRSZZvrXlhqKAH84IP2AlShd4scWv1tH
nAZqclSFLcep9dmDWsswBoEYagaPh5z0j7CegU+U9zm1aBctuXFPPDqJrsc8FGzJ
3Qtnf0kBGqfa1JHfwPkf8gfHQNDvgPcyzAVPh35B0+Iftzdu8uzVvxwVqRBrJYUL
HvNsCULIQC1wTV3XIgBNObKOnCtUuWg+Fw+a/dHB/f8BiSppRC/XH8gA/mFICziU
kBrxdhXOrdAOOsqHDY/UswJqFf+e4FpJ3DX5UV5h/0lnUWOUEt5UTLqHwVREgX2O
8xCapZZ1g60K7STLpA==
-----END CERTIFICATE-----
Generated at Tue Sep 5 07:42:05 2023 by rpki-client on console-ams.rpki-client.org